THE CRISIS READY INSTITUTE BLOG

Establishing an Effective Threat Management Program (Part 5 of 5)

Part 5: Building Your Threat Management Program

Crisis Ready® organizations start with a mindset that it’s not about the tools, it’s how you use them. In this post, I’m going to talk about how to get out of a reactive, response-focused threat management mindset and build a Crisis Ready® Threat Management Program.

It is important to remember that crisis readiness is cultural and requires an operational mindset. An effective threat management program should be implemented in concert with the broader crisis management operations necessary to mitigate threats and reduce the overall threat landscape. It goes beyond situational awareness and telling your team, “don’t mess it up” when something disruptive happens.

An effective threat management program:

  • Identifies and focuses on critical assets, personnel, data, and services that the organization defines as valuable.
  • Monitors the environment to detect and identify threats proactively.
  • Assesses threats to determine the individual level of risk within the identified areas of concern.
  • Applies an all-hazards mindset, including implementing strategies focused on individual threats, and parts of the organization vulnerable to or targeted by those threats.
  • Engages threats comprehensively and individually to detect, deter, and mitigate.

Crisis Ready® Threat Management

A holistic threat management program combines physical security, personnel assurance, and information-centric principles. Its objectives are to understand how a threat interacts with your organization, monitor those points of interaction, and intervene to manage those interactions when they become hazardous to the organization.

An Effective and Wholistic Approach is Cultural

A strong foundation for threat management includes a set of values that are shared and acted upon by everyone in your organization. This foundation helps to shape the way people think about threats in terms of how they impact people, assets, and information, and the approach they should take when observing threat indicators in their environment.

A protective culture gives people confidence that a threat management program is supportive and proactive in nature. This involves creating an organizational climate of accountability and mutual respect, generating a positive community-focused culture that encourages communication and reporting to detect, assess, and manage threats.

Determining organizational expectations and effectively communicating them is vital to creating and sustaining such a protective and supportive culture. Best practices to accomplish this include:

  • Clearly identifying behaviors expected from individuals to keep themselves and organizational assets safe and secure.
  • Communicating how those behaviors differ depending on the role or responsibilities of an individual or group within your organization.
  • Establishing the behaviors expected from vendors, contractors, or visitors when they are physically or virtually engaged with your organization.

Accountability vs. Blame

Ensuring that the members of your organization are educated about the dynamics of the threat environment that you operate within is critical to establishing a culture of readiness. It starts with letting them know that they will likely be in a position to detect and identify threats. Train your people to identify and report threats, including how to make those reports—including anonymous reporting—and emphasize that reporting is intended to help prevent an incident, not to get anybody in trouble.

Sharing details on how a threat will be assessed once a report is made can also help overcome resistance to reporting, increase organizational trust, and help to mitigate fear or misinformation about your threat management program.

Establishing a focus on accountability versus blame for human-driven threats plays a role in creating that protective culture. Assigning blame can be counter-productive, and can discourage reporting, even when the potential consequences of an incident are high. Still, a blame-free environment does not mean that individuals are not accountable for their actions. Providing people an opportunity to acknowledge their responsibility in an incident while involving them in addressing the consequences can reduce the potential for recurrence.

Remain Adaptive as Your Risk Tolerance Evolves

Threat management is an evolving challenge, requiring adaptive and resilient practices to address the dynamic environment. It involves rapidly changing tools, technologies, and organizational priorities. Best practices to remain adaptive include:

  • Maintain a continuous improvement mindset, taking advantage of best practices and lessons learned from the broader threat management community
  • Maintain a dynamic threat registry, updated with regular threat assessment and risk analysis activities.
  • Leverage information sharing, lessons learned, and best practices from authoritative agencies and non-governmental organizations who can provide a broad collection of reference and advisory materials

Keys for Success with Crisis Ready® Threat Management

Know Your People.

To achieve a practical level of personnel assurance, your organization must know and engage your people. You must incorporate continuous accountability processes as part of a protective culture and engage people with regular and constant awareness support, education, and training.

Identify Your Organization’s Assets and Prioritize Risks.

Understanding what you value, and what could possibly damage or disrupt those assets, is essential for an effective threat management program. A full understanding of those assets will allow the proper and effective management of associated risks. A proven approach begins with determining where your organization’s assets are located and who has access to them. This will allow a broader classification of the risk to each asset and enable the development of risk-driven mitigation strategies.

Establish the Proven Operational Approach of Detect-Assess-Manage.

Best practices for threat management engage an operational approach that is built in concert with existing programs and capabilities to enable detection and identification of threats, assessment of those threats, and then development and implementation of both active and passive techniques to manage them. All three are necessary to proactively manage threats. This approach is best employed and supported by a multidisciplinary team from across your organization, with leadership, HR, Information Technology, legal counsel, security, and others, each supporting the effort.

Crisis Ready® Threat Management allows for consistent, systematic mitigation of the potential for nature, technology, or people to harm your organization, encouraging engagement across all organizational operations and functions. The combination of cultural and systemic action will fulfill five core functions:

  1. Establish and maintain a safe environment to prevent harm to people, places, things, and information which your organization values.
  2. Prevent and protect against threats becoming hazards by instituting policy, controls, procedures, and programs to protect the organization.
  3. Detect threatening or concerning environmental conditions and identify activities which may increase the level of active or passive threat.
  4. Assess information about actual or potential threats.
  5. Manage potential threats before they escalate to become hazards.

Establishing Your Threat Management Program

Just as there are fundamental principles and best practices for what makes up a successful threat management program, there are some recognized best practices as well as concepts, tools, and processes for establishing such a program.

Building on the planning framework presented in the FEMA Comprehensive Preparedness Guide (CPG) 101: Developing and Maintaining Emergency Operations Plans, I am going to offer some of those best practices within the Plan, Organize & Equip, Train & Execute, and Evaluate & Improve (POETE) framework.

Plan

  • Secure Executive Engagement – Threat management programs require support from executive or senior leadership. Best practices from various sources demonstrate that programs directly aligned with the senior leadership of an organization are the most effective and have fewer impediments.
  • Identify the Best Fit – Where does threat management fit within your organization? Should it be an independent entity or fall under an already established team?
  • Determine Program Ownership – The program should be headed by a single individual supported by a multidisciplinary team. This individual will be responsible for the overall management and oversight of the program, with appropriate seniority and the ability to bring together multiple organizational activities.
  • Establish Guiding Principles – Your organization should identify principles that will guide the development of your threat management program and ensure that they match the challenge, as well as fit within your structure, function, and culture.
  • Develop Policy – Your threat management program will need formal policies and procedures, grounded in legal authorities. Your organization will need to ensure that you establish policies and procedures that are appropriate for your culture, mission, and locality, as well as conforming with applicable rules, regulations, and statues.
  • Do Not Reinvent The Wheel – Your threat management program should leverage other programs already in use in your organization. Existing programs provide insight into useful approaches, transferable best practices, and techniques that can be tailored to the unique needs of your threat management program.
  • Identify your “Crown Jewels” – What does your organization value, and what should it protect? Critical assets are people, things, or data that the organization values and are typically essential to your operation or business. These are both physical and intellectual in nature, including facilities, systems, equipment, personnel, technology, proprietary products, customer or vendor data, schematics, internal processes, and personnel privacy, to name a few examples.

Organize & Equip

  • Establish a Threat Assessment Methodology and Risk Rubric – The data and information collected as part of your threat management program will drive your threat assessment and risk analysis processes. History and empirical research have shown that most threats follow a predictable pathway. As a best practice, your organization should educate itself regarding those findings, making sure not to forget that the past does not define the future, and allowances should be prepared for deviations from recognized patterns. When using assessment tools, it is critical to avoid overreliance on those tools. Human insight and intuition play a key role in practical threat analysis and should not be discounted.
    • Risk Rubrics – Risk rubrics are evaluation tools, such as categories or scales, that use a rating or categorization system to communicate the type or level of risk presented by a threat or hazard. Rubrics can be generic or threat specific and are customizable based on your organization’s threat criteria and risk appetite. I provided some formulaic examples and approaches in part 3 of this series.
  • Establish a Multidisciplinary Threat Management Team – A multidisciplinary threat management team provides the analysis and management strategies that your organization will consider as a part of your threat management program. A team with a well-rounded composition of diverse members provides a versatile group that brings a wide variety of perspectives, capabilities, and backgrounds to address the threat environment.
  • Develop an Incident Response Plan – Creating a formal response plan ensures that your organization’s response to a hazard is standardized, repeatable, and consistently applied. The plan should include a statement of scope, define roles and responsibilities, and provide guidelines for response operations, reporting procedures, and both escalation and de-escalation procedures. Supplements may be needed for specific internal guidelines and procedures that describe the use of specialized tools and channels of communication. All response procedures must follow legal, ethical, privacy, and civil liberties laws.
  • Documentation and Recordkeeping – The documents generated in support of your threat management program need to be collected, retained, and disposed of following policies set forth by your organization. Your team should use a formal system of centralized recordkeeping. This will enable your team to retroactively confirm that actions taken to manage and mitigate threats are available to support the identification of best practices and lessons learned or to defend the decisions made and actions taken by your organization if necessary in response to litigation.

Train & Execute

  • Sell the Program – Successful threat management programs require dedicated support from all levels within an organization. Start by framing the program in the context of your organization’s values. Leadership and member buy-in can provide your program with the explicit authority and legitimacy it requires to be effective. Emphasize the return on investment by revealing what could be lost to an unmitigated incident or event. An understanding of potential consequences impacting employment, revenue, operational capability, market edge, market share, and brand reputation, among many others, can help unify your organization’s people in support of a threat management program.
  • Implement a Formal Training and Awareness Program – Training and awareness are critical processes in an active threat management program. All organizational personnel, including members, contractors, vendors, and consultants, should be given training to prevent the transition of a known threat to a hazard. A highly aware and adequately trained organization is key to early detection and prevention of threats and hazards.

Evaluate & Improve

  • Conduct Exercises – Used to evaluate the effectiveness of your threat management program and the associated training, exercises will help determine if your program’s goals and objectives are being met. When assessing your organization’s capabilities, it is essential to use a progressive approach. Start slowly with small discussion-based exercises to test your organization’s knowledge and understanding of the threat environment and build to a full-scale operational exercise that stresses your team.
  • Maintain the Program – To keep your threat management program current, you should establish a formal maintenance process for reviewing and revising the component policies, procedures, standards, and legal and regulatory obligations. The maintenance process should be a recurring activity with tasks scheduled monthly, semiannually, and annually. To help your program mature, your threat management team should have the time and resources available to remain current on evolving best practices and tools while benchmarking other programs and studying lessons learned from similar organizations across the globe. Your program should continuously change because the threat landscape is continually transforming. Technology is upgrading or becoming obsolete, organizations are reconfiguring or trying new processes, markets fluctuate, lessons are learned, information and insights are obtained, and priorities are adjusted.
  • Oversight and Compliance – An essential concept in threat management is ensuring that there is a means in the organization to ensure the quality of the assessment and analysis being conducted. Your organization should designate individuals who will conduct independent evaluations of the program’s performance, including compliance with identified best practices and lessons learned from similar organizations. This oversight activity will enable the program to continue to learn and improve, provide accountability for those responsible for this function, and provide credibility to leadership and the general membership of your organization.

Use This to Strengthen Your Organization’s Resilience

The program management elements offered within this series of posts can help any organization, small or large, establish a practical Crisis Ready® Threat Management Program. Applying these concepts and tailoring them to your organization’s environment can provide a means to protect what you value.

Your program should not be focused on responding to disruptive incidents or events. Instead, it should be grounded in the notion of providing a safe environment for your organization and preventing threats from becoming hazards while mitigating the associated risk before an issue escalates to become a problem, emergency, or disaster.

I’ve outlined some clear best practice approaches, guidance and resources within this 5-part series. It’s our hope that you now choose to leverage them to your organization—and its people’s—advantage. If you have any questions as you undertake this important implementation, the Crisis Ready Team is always here to support you.

To your brand’s resilience.

Read the other parts of this 5-part series on developing your Threat Management Program:

Part 1: Defining and Categorizing Threats for your Organization
Part 2: Designing the Ability to Properly Detect a Threat
Part 3: Properly Assessing a Threat and Analyzing its Risk
Part 4: Best Practices for Threat Management

  • Subscribe to the Crisis Ready® Blog

  • Recent Posts

  • Blog Categories

  • Upcoming Crisis Ready Course:

    Developing Your Crisis Communication Program

    Join us, September 21st and 23rd, to take your crisis communication skills to the next level.

    Take the first step towards your
    Crisis Ready® Certification

    Course: Mastering the Art of
    Crisis Communication and Leadership

    Our next cohort kicks off soon!

    The Crisis Ready® Coaching Program

    The new ‘normal’ is both complex and here to stay. More than that, it offers opportunities into a new way of engagement.

    The Crisis Ready® Coaching Program provides professionals with access to leading experts, ongoing support, and best-practice strategies for confidently navigating the complexities of today’s ever-changing world. All while elevating your team’s skills and your brand’s overall resilience for the security you need into an even stronger tomorrow.

    Click here to learn more.
    Author

    Leave a Reply

    Your email address will not be published. Required fields are marked *

    Newsletter Signup

    Paul Damaren

    Paul Damaren is the Global Director of Strategic Accounts for LRQA, a global Assurance Provider. Paul also holds the position of Chief Commercial Officer and Partner at StepUp Solution Services. Paul has worked as a Senior Executive in the Certification space for 10 years and has over 39 years’ experience in the Hospitality, Certification, Service, Retail agri-food and Technology sectors. Damaren is skilled in sales, marketing, certification, operations and software applications and he possesses an MBA from McGill University.

    Mr. Damaren has worked with many companies across multiple sectors in supporting their food safety, supply chain, health & wellness, front & back of house operations, brand protection, quality, environmental, health & safety, GMP/GDP compliance, automotive, aerospace, medical, information security and technology requirements.

    Paul was formerly a board member and Treasurer for the Ontario Food Protection Association (OFPA) and is a currently an Advisor & Council Member with The GW University School of Business and the Crisis Ready Institute.

    Before working in the Certification industry, Damaren was a professional Chef/consultant for 20+ years working in major hotel chains, restaurants, private golf courses and food service organizations. Further, Damaren was a member of the National Canadian Federation of Chefs and Cooks (C.F.C.C.) for 14 years, member of the Region of Waterloo Culinary Association (R.W.C.A.) for 14 years, President of R.W.C.A. (Region of Waterloo Culinary Association) for 3 years, special Events chairman - R.W.C.A. – 1998 – 2000 and National Culinary Ambassador to Russia for 5 years.

    Paul’s wealth of knowledge and experience across the span of our services supports his commitment to the ongoing success of our customers.

    As Executive Vice President and Managing Director in the BCW Public Affairs and Crisis practice, Licy drives healthcare and social impact policy and strategy, and helps shape strategic direction on diversity, inclusion and belonging for the firm and its clients across North America, in public and corporate affairs, government relations, communications, crisis and reputation management. Licy also leads the BCW Healthcare Team in Washington, D.C.

    An expert in public affairs, policy and diversity and inclusion, with over twenty five years of experience at the international, national, state and local levels across the nonprofit, philanthropic, corporate and government sectors, Licy is an accomplished, values-driven leader with unparalleled experience in developing and leading integrated public affairs campaigns combining strategic communications, public relations, political/legislative initiatives, policy, coalition building, grassroots efforts and advocacy.

    Before joining BCW, Licy built and lead a nationally recognized minority owned strategic public affairs and communications firm, served as Health Practice Chair and Principal at The Raben Group, was the Chief Executive Officer of The AIDS Alliance for Children, Youth and Families, and managed and helped set the leadership direction for strategic policy, communications, and advocacy investments in executive and senior government affairs roles for the American Cancer Society and the nation’s Community Health Centers.

    Before joining the private sector, Licy was domestic policy advisor to U.S. Congressman Barney Frank and served in several capacities in the Office of Senator Edward M. Kennedy. During his extensive tenure in Washington, D.C., Licy has played a leading role in efforts to draft, shape and enact legislation and policy to improve the public health, health care safety net and the lives, livelihoods and well-being of the nation’s disadvantaged and underserved communities. 

    Licy also has worked with Moet Hennessey to drive diversity and inclusion on Wall Street and corporate America. He has partnered with Vice President Al Gore, senior government officials, scientists, NGOs and activists, on global climate change impact and sustainability across Africa. And he was appointed by Republican and Democrat governors to oversee the conservation, preservation and management of a prominent U.S. national historic landmark.

    Licy is a graduate of Duke University and holds a certificate in public health leadership in epidemic preparedness and management from the University of North Chapel Hill—School of Public Health and Kenan Flagler Business School, and is the recipient of multiple industry awards and citations for his leadership, policy and public affairs acumen, including being named to The Hill Newspaper list of most influential  leaders in Washington, D.C. consecutively over the last ten years. As a global citizen, Licy has lived in Turkey and Spain, and is fluent in Spanish and Cape Verdean Portuguese.

    About the Inaugural Membership Feedback

    As we get this membership off the ground, we’re looking to our 2022 inaugural members to be a part of helping us strengthen and tailor this program to meet your needs.

    This will involve regular communication with the Crisis Ready Team to provide feedback, share requests for additional ways to support you and your business, etc.

    About the Crisis Ready Courses

    Each Crisis Ready Course is designed to help you strengthen your Crisis Ready® Expertise. Course subjects will include crisis communication, establishing governance, crisis leadership, storytelling for crisis comms, DEI integration, and more.

    Each course is complete with:

    • Anywhere from 4-15 hours of virtual learning that you can do at your own pace
    • Knowledge tests
    • Worksheets and resources to help you bring these valuable learnings and use them within your client work (applicable solely to those who have the license through this membership)
    • A Certificate Of Completion upon successful completion of each course

    Opportunity for Individualized Coaching and Support

    If you:

    • Sometimes feel as though you’re in over your head with your clients’ issue and crisis management needs
    • Could use support and coaching to help you prepare for and have business development discussions with prospective clients
    • Wish you had more behind-the-scenes support as you serve and support your clients
    • Would benefit from personalized coaching and support as you take your Crisis Ready skills and services to the next level...

    ... then you will benefit from Crisis Ready Institute's 1:1 coaching and support. This opportunity is retainer-based and is offered exclusively to our consultant and small agency members.

    This offering provides personalized coaching and support in:

    • Managing client issues and crises as they arise. We support you as you support your clients so that you can feel confident in the recommendations and advice you provide.
    • Integrating the Crisis Ready Model into your business and client work.
    • Helping you strategize business development conversations and close more deals.
    • Gaining buy-in from existing clients. We can be your frontward-facing partner or remain behind-the-scenes, whatever the situation calls for.

    Two Packages Available:

    Monthly retainer*
    Hours of support per month

    $2,500 USD
    Up to 5

    $5,000 USD
    Up to 10

    * This is in addition to the annual membership fee.

    Before you go to checkout...

    Sign up to demo this course!

    We're excited to be sharing Sustained Resilience: Building Tomorrow's Leaders with you. Fill in the form below to gain access to demo this course. Once you fill in this form, we'll send you an email with further instructions.

    Thank you for the honor of considering this important course for your curriculum. We look forward to sharing in the experience with you!

    Melissa Agnes

    FOUNDER AND CEO, CRISIS READY INSTITUTE

    • Recognized globally as an expert, thought-leader and visionary in the field of crisis communication.
    • Has worked with global players, including NATO, the Pentagon (DoD), Ministries of Foreign Affairs and Defense, financial firms, technology companies, healthcare organizations, cities and municipalities, law enforcement agencies, aviation organizations, global non-profits, etc.
    • Author of “Crisis Ready: Building an Invincible Brand in an Uncertain World”—ranked amongst the leading crisis management books of all time and named as one of the top ten
      business books of 2018 by Forbes.
    • Creator of the Crisis Ready® Model–which is recognized and being taught as leading industry best practice in universities and higher education curriculums around the world,
      including at Harvard University.
    • Leading international keynote speaker on the subject and TEDx alumna.
    • Sat on the panel tasked with developing the International Standard for Crisis Management— ISO 22361, Guidelines for developing a strategic capability.
    • Sits on the Board of Directors for ZeroNow, a non-profit on a mission to bring school violence down to ZERO.
    • Sat on Police Professional Standards, Ethics and Image Committee for the International Association of Chiefs of Police.
    • Founder of the Crisis Ready® Community.

    Build for a stronger tomorrow by strengthening your team’s skills in issue management, crisis management, and crisis communication.

    Between the demands of our social impact economy, the divisiveness of society and the many other challenges in front of us, embedding a crisis ready culture is more important than ever before. Having a team that is trained, poised, and empowered to effectively respond to risk, controversy and other threats, will strengthen stakeholder relationships and increase the brand equity of your organization. This is a powerful opportunity. The Crisis Ready® Coaching Program is specifically designed to equip your team with the tools needed today for launching into a stronger tomorrow.

    Effectively manage through today’s challenges with the help of a diverse group of experts.

    From best practices around re-opening, to diversity and inclusion, to managing through the impacts that 2020 has left on your business, the Crisis Ready® Coaching Program is designed to support you through the challenges of today, in order to recover faster and stronger for an even better tomorrow.

    Gain strategic foresight into the coming months, giving you the tools you need to better anticipate and plan for a stronger future.

    COVID-19 continues to affect a great majority of professionals and businesses, leaving them blindsided by its impact and all the uncertainty that came with it. The Crisis Ready® Coaching Program provides you with access to a diverse group of experts, each with unique areas of insight, to help provide you and your team with strengthened foresight to better anticipate and plan for both the risks and opportunities that lay ahead of us all.

    Licy Do Canto

    Licy Do Canto, is a veteran of public policy, corporate strategy, health care communications and diversity and inclusion, is managing director of APCO Worldwide’s Washington D.C. office headquarters and mid-Atlantic region lead. Licy is also a Global Advisory Council (GAC) member here at the Crisis Ready Institute and a highly recognized African-American public affairs, lobbyist and communications strategist— recognized by TheHill newspaper for the 11th consecutive year as one of the most influential leaders in Washington, DC.

    As Executive Vice President and Managing Director in the BCW Public Affairs and Crisis practice, Licy drives healthcare and social impact policy and strategy, and helps shape strategic direction on diversity, inclusion and belonging for the firm and its clients across North America, in public and corporate affairs, government relations, communications, crisis and reputation management. Licy also leads the BCW Healthcare Team in Washington, D.C.

    An expert in public affairs, policy and diversity and inclusion, with over twenty five years of experience at the international, national, state and local levels across the nonprofit, philanthropic, corporate and government sectors, Licy is an accomplished, values-driven leader with unparalleled experience in developing and leading integrated public affairs campaigns combining strategic communications, public relations, political/legislative initiatives, policy, coalition building, grassroots efforts and advocacy.

    Before joining BCW, Licy built and lead a nationally recognized minority owned strategic public affairs and communications firm, served as Health Practice Chair and Principal at The Raben Group, was the Chief Executive Officer of The AIDS Alliance for Children, Youth and Families, and managed and helped set the leadership direction for strategic policy, communications, and advocacy investments in executive and senior government affairs roles for the American Cancer Society and the nation’s Community Health Centers.

    Before joining the private sector, Licy was domestic policy advisor to U.S. Congressman Barney Frank and served in several capacities in the Office of Senator Edward M. Kennedy. During his extensive tenure in Washington, D.C., Licy has played a leading role in efforts to draft, shape and enact legislation and policy to improve the public health, health care safety net and the lives, livelihoods and well-being of the nation’s disadvantaged and underserved communities. 

    Licy also has worked with Moet Hennessey to drive diversity and inclusion on Wall Street and corporate America. He has partnered with Vice President Al Gore, senior government officials, scientists, NGOs and activists, on global climate change impact and sustainability across Africa. And he was appointed by Republican and Democrat governors to oversee the conservation, preservation and management of a prominent U.S. national historic landmark.

    Licy is a graduate of Duke University and holds a certificate in public health leadership in epidemic preparedness and management from the University of North Chapel Hill—School of Public Health and Kenan Flagler Business School, and is the recipient of multiple industry awards and citations for his leadership, policy and public affairs acumen, including being named to The Hill Newspaper list of most influential  leaders in Washington, D.C. consecutively over the last ten years. As a global citizen, Licy has lived in Turkey and Spain, and is fluent in Spanish and Cape Verdean Portuguese.

    Melissa Agnes

    Recognized globally as an expert, thought leader and visionary in the field of crisis communication, Melissa Agnes has worked with global players, including NATO, the Pentagon (DoD), Ministries of Foreign Affairs and Defense, financial firms, technology companies, healthcare organizations, cities and municipalities, law enforcement agencies, aviation organizations, global non-profits, and many others.

    In 2020, Melissa founded Crisis Ready Institute, a public benefit corporation dedicated to teaching advanced crisis communication skills.

    She's currently passionate about providing dedicated support to crisis communication consultants. Through her programs, she’s focused on helping them strengthen their crisis communication skills and credibility in the market, and supporting them in growing and scaling their business. The work they do is important and she's passionate about helping them amplify the positive impact they have in the world.

    Her book, Crisis Ready: Building an Invincible Brand in an Uncertain World, is taught in dozens of universities around the world, including at Harvard University; is ranked amongst the leading crisis management books of all time, by Book Authority; and was named one of the top ten business books of 2018 by Forbes.

    Melissa is the creator of the Crisis Ready® Model, which is recognized and being taught as leading industry best practice in the fields of crisis management and crisis communication.

    As an in-demand international keynote speaker and a TEDx alumna, Melissa has traveled the world helping organizations and leaders further strengthen their crisis ready mindset, skills and capabilities.

    In 2019, Melissa founded the Crisis Ready® Community, a space for professionals to come together to support one another, collaborate and strengthen their crisis ready skills.

    Melissa sits on the Board of Directors for ZeroNow, a non-profit committed to ending harmful events in schools.

    She also sat on the Board of Trustees for D'Youville University for four years until the end of her term, where she also serves as a visiting scholar for the course she co-created and co-teaches on Crisis Leadership.

    Passionate about serving law enforcement and bridging the trust divide between agencies and the communities they serve, Melissa is a former member of the International Association of Chiefs of Police (IACP). In 2021 she co-chaired a committee tasked with developing a strategy and plan of action to begin resolving the trust crisis in the U.S.

    In 2019 and 2020, Melissa sat on the panel tasked with developing the International Standard for Crisis Management— ISO 22361, Guidelines for developing a strategic capability.

    Born and raised in Montreal, Quebec, Melissa currently lives in New York City and enjoys weight-lifting, sailing, and exploring new cities, countries, and cultures.

    Erick Anez

    Erick Anez is the Global Head of Business Resilience at Finastra. Erick is a proven leader with well over a decade of experience leading change and transformation in the Operational Resilience field.

    His hands-on approach focuses on operational learning, culture, and reputational management. Erick holds a Bachelor of Emergency & Homeland Security, Graduate studies in Security and Disaster Management, is a Certified Business Continuity Professional (CBCP), Certified Risk Management Professional (CRMP), graduate of the FEMA institute in Incident Management and Command, and is a respected member of Public-Private partnerships within the Department of Homeland Security (DHS), Federal Bureau of Investigations (FBI) and  the Federal Emergency Management Agency (FEMA).

    Some of his most notable achievements in the field include leading the private sector response to Hurricane Maria as well as working with the Department of Homeland Security (DHS) in Continuity of Operations (CCOP) projects for mission-critical facilities in the United States. Erick has also trained with the Center for Disease Control (CDC) in Infectious Disease Planning and community response, including Point of Dispensing initiatives.

    From 2016 to 2019, Erick held several roles at Crowley and, most recently, was the company’s Managing Director of Safety & Resilience. During this time, he was responsible for resilience operations supporting all business segments as well as leading the organization’s safety culture improvement journey. At Crowley, he led the Occupational Health & Safety, Business Continuity, and Crisis Management teams.

    Before joining Crowley, Erick held similar roles at Southwest Gas and Third Federal Savings & Loan.

    Aaron Marks

    Founder and Principal, One Thirty Nine Consulting
    Global Advisory Council Member, Crisis Ready® Institute

    Aaron Marks is the founder and principal of One Thirty Nine Consulting, providing services for small and large businesses in Risk, Crisis, and Consequence Management.

    Supporting both domestic and international clients, he provides operational and subject matter expertise in readiness and preparedness, crisis and incident management, and business and operational continuity for complex systems and organizations.

    Aaron has provided in-depth review, assessment, and analysis for technology, policy, and operational programs for clients in healthcare, critical manufacturing, and entertainment and hospitality, as well as for state, local, tribal, territorial, and federal governments in the United States, Europe, and the Middle East. He is a recognized authority on the application of nontraditional techniques and methodologies to meet the unique requirements of training, evaluation, and analytic games and exercise.

    Prior to entering the readiness and preparedness field, Aaron was the Director of Operations for a commercial ambulance and Emergency Medical Services (EMS) provider in western New York State where he participated in the integration of commercial EMS and medical transportation resources into the local Trauma System.

    During his 30-year career, Aaron has worked in almost every aspect of EMS except fleet services. This includes experience in Hazardous Materials and Tactical Medicine, provision of prehospital care in urban, suburban, rural, and frontier environments, and acting as a team leader for both ground and aeromedical Critical Care Transport Teams.

    Aaron is a FEMA Master Exercise Practitioner and received a B.A. in Psychology from Texas Tech University in Lubbock, Texas, and a master’s degree in Public Administration with a focus in Emergency Management from Jacksonville State University in Jacksonville, Alabama. He is also a Nationally Registered Paramedic and currently practices as an Assistant Chief with the Amissville Volunteer Fire and Rescue Department, Amissville Virginia.

    Chris Hsiung

    Chris is the 11th Police Chief of the Mountain View Police Department, located in the heart of Silicon Valley. For more than 25 years, he has served the Mountain View community, and as the department’s leader, is passionate about maintaining MVPD’s role as a progressive law enforcement organization in the 21st century.

    Chris is an internationally recognized speaker and columnist on the areas of crisis communications, critical incident management, leadership, and engagement with stakeholder groups. In his time with Mountain View PD, Chris has held a variety of investigative, tactical, and leadership roles, serving in every division in the organization. He is a graduate of the Harvard Kennedy School of Government Senior Executives in State and Local Government program and has a master’s degree in eBusiness Management from Notre Dame de Namur in Belmont, CA.

    Chris also serves in several leadership positions on multiple boards, including as president on the Government Social Media Leadership Council and committee member on the IACP's Professional Standards, Ethics, and Image Committee. Previously, Chris served as a board member for the Peninsula Conflict Resolution Center and two terms as a commissioner on the City of San Mateo Community Relations Commission.

    You can connect with him on Twitter @Chief_Hsiung or LinkedIn.

    Ashley Davis

    Ashley is a Brand and Marketing Strategist who partners with CEOs, executives and solopreneurs to grow their personal and professional brands. After spending over a decade working in strategic communications for multimillion dollar brands and startups, Ashley knows what truly drives conversations, builds mutually beneficial relationships between organizations and their stakeholder groups and attracts strong strategic partnerships.

    Ashley has helped organizations and leaders increase employee awareness and overall understanding of the company vision. She has strong experience / knowledge of social media tools and techniques for driving awareness, reputation and brand—and is known for advancing a company's messaging in the marketplace by growing the following of now multiple multimillion dollar brands and startups.

    Ashley has served as the Editor of monthly all employee publications by managing the planning, writing and production. She is an integral part of new product launches and is frequently engaged to train entire sales teams along with channel / distribution partners on new product launches. In addition to her extensive experience, Ashley is a trained business coach.

    Ashley holds a BA in Global Business Management from the University of Phoenix.

    Newsletter sign up

    Stay informed and at the forefront of your Crisis Ready Mindset, Skillset, and Capabilities. Subscribe to the Crisis Ready Newsletter.